Automating the Analysis of Honeypot Data (Extended Abstract)

Olivier Thonnard; Jouni Viinikka; Corrado Leita; Marc Dacier

doi:10.1007/978-3-540-87403-4_29

Back

Automating the Analysis of Honeypot Data (Extended Abstract)

Conference proceeding

Peer reviewed

Automating the Analysis of Honeypot Data (Extended Abstract)

Olivier Thonnard, Jouni Viinikka, Corrado Leita and Marc Dacier

RECENT ADVANCES IN INTRUSION DETECTION, RAID 2008, Vol.5230, pp.406-407

Lecture Notes in Computer Science

01/01/2008

DOI: https://doi.org/10.1007/978-3-540-87403-4_29

Abstract

Computer Science

Computer Science, Hardware & Architecture

Computer Science, Software Engineering

Computer Science, Theory & Methods

Science & Technology

Technology

Telecommunications

We describe the on-going work towards further automating the analysis of data generated by a large honeynet architecture called Leurre.com and SGNET. The underlying motivation is helping us to integrate the use of honeypot data into daily network security monitoring. We propose a system a based oil two automated steps: i) the detection of relevant attack events within a, large honeynet traffic data set, and ii) the extraction of highly similar events based oil temporal correlation.

Metrics

1 Record Views

Details

Title: Automating the Analysis of Honeypot Data (Extended Abstract)
Creators - without role: Olivier Thonnard - EURECOM
Jouni Viinikka - Orange
Corrado Leita - EURECOM
Marc Dacier - Symantec Res Labs, Sophia Antipolis, France
Contributors - without role: R Lippmann
E Kirda
A Trachtenberg
Publication Details: RECENT ADVANCES IN INTRUSION DETECTION, RAID 2008, Vol.5230, pp.406-407
Series: Lecture Notes in Computer Science
Publisher: Springer Nature
Number of pages: 2
Identifiers: 9942324808331
Academic Unit: King Abdullah University of Science & Technology
Language: English
Resource Type: Conference proceeding